This role will require being full-time onsite at our Sioux Falls office to support collaborative team dynamics and innovative problem-solving.
BitGo is looking for a Head of Internal Audit to lead and scale the company's third line of defense during a pivotal period of growth. Reporting to the Audit Committee functionality and the Chief Operating Officer administratively, this individual will own the design and execution of a risk-based audit program across BitGo's global operations, drive Sarbanes-Oxley compliance, and serve as a trusted advisor to the business on matters of internal control, regulatory compliance, and operational risk. The ideal candidate is a seasoned audit leader who thrives in dynamic, fast-moving environments and brings deep expertise in financial services or technology.
Responsibilities- Own and continuously mature the company's Sarbanes-Oxley (SOX) compliance framework, including designing, executing, and overseeing the annual Internal Controls over Financial Reporting (ICFR) testing plan in coordination with management and external auditors
- Serve as the primary internal owner for SOC 1, SOC 2, and CCSS audits, coordinating across engineering, security, operations, and finance to facilitate timely and successful completion of each examination
- Oversee and direct co-sourced audit resources engaged in the planning and execution of operational and compliance audits across BitGo's regulated entities globally, ensuring consistent audit quality, methodology, and timely delivery of findings
- Build and maintain strong working relationships with external auditors, managing day-to-day interactions, coordinating audit requests, and aligning on scope, timing, and control reliance strategies to support an efficient and effective external audit process
- Prepare and deliver regular, high-quality reporting on audit results, open findings, remediation status, and emerging risk themes to BitGo's Board of Directors, Audit Committees, and senior management across its regulated entities
- Develop and maintain a risk-based annual internal audit plan that reflects the company's strategic priorities, regulatory obligations, and evolving risk landscape, and update the plan dynamically in response to business changes
- Partner cross-functionally with Legal, Compliance, Finance, and Technology teams to identify control gaps, support remediation efforts, and promote a culture of accountability and continuous improvement
Requirements- 10+ years of progressive experience in internal audit, public accounting, or a combination thereof, including demonstrated leadership of audit teams or functions
- Deep expertise in SOX / ICFR compliance, including scoping, control design evaluation, testing, and deficiency assessment in complex organizational environments
- Hands-on experience managing SOC 1 and SOC 2 readiness and examination processes, including coordinating with service auditors and internal stakeholders
- Experience operating in or auditing regulated financial services entities, with a strong understanding of the regulatory and compliance landscape applicable to such organizations
- Proven ability to manage and direct co-source or third-party audit providers, including scoping engagements, reviewing work product, and ensuring quality and timeliness
- Strong executive presence and communication skills, with the ability to present complex audit findings and risk themes clearly and credibly to Boards, Audit Committees, and C-suite stakeholders
- Bachelor's degree in Accounting, Finance, Business, or a related field; advanced degree a plus
Preferred- One or more relevant professional certifications, including Certified Public Accountant (CPA), Certified Internal Auditor (CIA), and/or Certified Information Systems Auditor (CISA)
- Prior experience in the digital assets industry, including familiarity with digital asset custody, trading, staking, or settlement operations and the associated risk and control environment
- Knowledge of the rules, regulations, and supervisory expectations applicable to federally chartered trust banks, including OCC guidance, fiduciary standards, and related compliance obligations
